Home
Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide
2020-06-10
Version history
2020-06-10
login
popup
Submissions
10
15
20
50
Request
Connection
hash(md5,sha256)
Signature
PE API
Tag or IDS
Icon
user nickname
Date range button:
Date range picker
First seen:
Last seen:
No
Date
Request
Urls
Hosts
IDS
Rule
Score
Zero
VT
Player
Etc
4186
2025-01-05 09:02
index_split_026.html
3b4def7f6870c891686ab21450217c50
Downloader
Create Service
Socket
DGA
Http API
ScreenShot
Escalate priviledges
Steal credential
PWS
Hijack Network
Sniff Audio
HTTP
DNS
Code injection
Internet API
persistence
FTP
KeyLogger
P2P
AntiDebug
AntiVM
MSOffice File
Code Injection
RWX flags setting
unpack itself
Windows utilities
malicious URLs
Windows
3.2
guest
4187
2025-01-05 09:01
index_split_025.html
c8277ba8b24f46319990e851bf2520ca
Downloader
Create Service
Socket
DGA
Http API
ScreenShot
Escalate priviledges
Steal credential
PWS
Hijack Network
Sniff Audio
HTTP
DNS
Code injection
Internet API
persistence
FTP
KeyLogger
P2P
AntiDebug
AntiVM
MSOffice File
Code Injection
RWX flags setting
unpack itself
Windows utilities
malicious URLs
Windows
2.6
guest
4188
2025-01-05 09:01
index_split_009.html
08af8fe4b9abe0dc77be39a09182c0eb
Downloader
Create Service
Socket
DGA
Http API
ScreenShot
Escalate priviledges
Steal credential
PWS
Hijack Network
Sniff Audio
HTTP
DNS
Code injection
Internet API
persistence
FTP
KeyLogger
P2P
AntiDebug
AntiVM
MSOffice File
Code Injection
RWX flags setting
unpack itself
Windows utilities
malicious URLs
Windows
3.2
guest
4189
2025-01-05 08:58
mimetype
4154e1f4f9c0e002cc44aae97103ebe2
Downloader
Create Service
Socket
DGA
Http API
ScreenShot
Escalate priviledges
Steal credential
PWS
Hijack Network
Sniff Audio
HTTP
DNS
Code injection
Internet API
persistence
FTP
KeyLogger
P2P
AntiDebug
AntiVM
MSOffice File
Code Injection
RWX flags setting
unpack itself
Windows utilities
malicious URLs
Windows
2.6
guest
4190
2025-01-05 08:58
index_split_035.html
f59448b8c3035baecc5916a489ef9496
Downloader
Create Service
Socket
DGA
Http API
ScreenShot
Escalate priviledges
Steal credential
PWS
Hijack Network
Sniff Audio
HTTP
DNS
Code injection
Internet API
persistence
FTP
KeyLogger
P2P
AntiDebug
AntiVM
MSOffice File
Code Injection
RWX flags setting
unpack itself
Windows utilities
malicious URLs
Windows
3.2
guest
4191
2025-01-05 08:58
index_split_001.html
075bddda1a0a8019d1c907bda3a85172
Downloader
Create Service
Socket
DGA
Http API
ScreenShot
Escalate priviledges
Steal credential
PWS
Hijack Network
Sniff Audio
HTTP
DNS
Code injection
Internet API
persistence
FTP
KeyLogger
P2P
AntiDebug
AntiVM
MSOffice File
Code Injection
RWX flags setting
unpack itself
Windows utilities
malicious URLs
Windows
3.2
guest
4192
2025-01-05 04:25
qbittorrent_5.0.3_x64_setup.ex...
83505c82e83bd2e61bd67dfcf30724cf
NSIS
Malicious Library
UPX
PE File
PE32
DLL
Check memory
Creates executable files
unpack itself
AppData folder
crashed
1.8
guest
4193
2025-01-03 18:03
random.exe
19861d67b2811d6eb3be1951b28703ae
Malicious Library
UPX
PE File
PE64
VirusTotal
Malware
Check memory
Checks debugger
Creates executable files
unpack itself
2.2
33
ZeroCERT
4194
2025-01-03 18:00
vnc.exe
b7e00e7be81fefb7c57f2e5f9ba53310
Generic Malware
Malicious Library
Malicious Packer
UPX
PE File
PE32
OS Processor Check
VirusTotal
Malware
1.2
56
ZeroCERT
4195
2025-01-03 17:59
cici.exe
aa7e5ae710a742491d6d185ae235ada8
RedLine stealer
RedlineStealer
Malicious Library
.NET framework(MSIL)
UPX
PE File
.NET EXE
PE32
OS Processor Check
VirusTotal
Malware
Check memory
Checks debugger
unpack itself
Windows
DNS
Cryptographic key
1
Info
×
185.81.68.147
3.8
59
ZeroCERT
4196
2025-01-03 17:58
2.exe
119a00350e1a20e1a3ea01153b91001b
Malicious Library
Antivirus
UPX
PE File
PE32
OS Processor Check
VirusTotal
Malware
PDB
sandbox evasion
2.6
50
ZeroCERT
4197
2025-01-03 17:58
qidong.exe
fd3b02595e57959bdffe927dfa01b651
Malicious Library
PE File
PE32
VirusTotal
Malware
0.6
8
ZeroCERT
4198
2025-01-03 17:56
mcgen.exe
211da2d6a5b8b04b49d1c837eecee46c
Gen1
Generic Malware
Malicious Library
UPX
PE File
PE64
OS Processor Check
DLL
ZIP Format
VirusTotal
Malware
Check memory
Checks debugger
Creates executable files
unpack itself
crashed
3.0
49
ZeroCERT
4199
2025-01-03 17:55
Java32.exe
9664ad464838e6f6e2196a594ef5682f
Antivirus
UPX
PE File
.NET EXE
PE32
OS Processor Check
VirusTotal
Malware
suspicious privilege
MachineGuid
Check memory
Checks debugger
unpack itself
AntiVM_Disk
VM Disk Size Check
Windows
ComputerName
Cryptographic key
4.0
53
ZeroCERT
4200
2025-01-02 10:50
Bootxr.exe
cab92c144fd667cef7315c451bed854b
Generic Malware
Malicious Library
UPX
Antivirus
PE File
PE32
OS Processor Check
PowerShell
VirusTotal
Cryptocurrency Miner
Malware
Cryptocurrency
powershell
AutoRuns
PDB
suspicious privilege
Check memory
Checks debugger
Creates shortcut
unpack itself
Windows utilities
powershell.exe wrote
suspicious process
WriteConsoleW
Windows
ComputerName
Cryptographic key
6.6
39
ZeroCERT
First
Previous
271
272
273
274
275
276
277
278
279
280
Next
Last
Total : 53,938cnts
Delete
×
Do you want to delete it?
View
×
Insert
×
http
domains
hosts
ips
Memo
Tag
Alert
×
Insert error....
keyword
